(12) INTERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPERATION TREATY (PCT) 



(19) World Intellectual Property Organization 
International Bureau 

(43) International Publication Date 
2 August 2001 (02.08.2001) 




PCT 



inHniiiiHMiniH 

(10) International Publication Number 

WO 01/55979 Al 



(51) International Patent Classification 7 : 
G06F 17/60 



G07F 7/10 // 



(21) International Application Number: PCT/FI01/00063 

(22) International Filing Date: 24 January 2001 (24.01.2001) 

(25) Filing Language: Finnish 

(26) Publication Language: English 



(30) Priority Data: 
20000135 



24 January 2000 (24.01.2000) FT 



(71) Applicant (for all designated States except US): SONERA 
SMARTTRUST OY [FI/FI]; c7o Sonera Oyj, P.O. Box 
106, FIN-00051 Sonera (FI). 

; (72) Inventor; and 

! (75) Inventor/Applicant (for US only): BLUMENTHAL, 
! Henrik [FI/FI]; Sonera SmartTrust Oy, P.O. Box 425, 
| FIN-00051 Sonera (FT). 



(74) Agent: PAPULA OY; P.O. Box 981 (Fredrikinkatu 61 A), 
F1N-00101 Helsinki (FI). 

(81) Designated States (national): AE, AG, AL, AM, AT, AT 
(utility model), AU, AZ, BA, BB, BG, BR, BY, BZ, CA, 
CH, CN, CR, CU, CZ, CZ (utiUty model), DE, DE (utility 
model), DK, DK (utility model), DM, DZ, EE, EE (utility 
model), ES, FI, FI (utility model), GB, GD, GE, GH, GM, 
HR, HU, ID, IL, IN, IS, JP, KE, KG, KP, KR, KZ, LC, LK, 
LR, LS, LT, LU, LV, MA, MD, MG, MK, MN, MW. MX, 
MZ, NO, NZ, PL, PT, RO, RU, SD, SE, SG, SI, SIC SK 
(utility model), SL, TJ, TM» TR, TT, TZ, UA, UG, US, UZ, 
VN, YU, ZA, ZW. 

(84) Designated States (regional): ARIPO patent (GH, GM, 
KE, LS, MW, MZ, SD. SL, SZ, TZ. UG, ZW), Eurasian 
patent (AM, AZ, BY, KG. KZ, MD, RU, TJ, TM), European 
patent (AT. BE, CH. CY. DE, DK, ES, FI, FR, GB, GR, IE, 
IT, LU. MC NL, PT, SE, TR), OAPI patent (BF, BJ, CF, 
CG, CI, CM, GA, GN, GW, ML, MR, NE, SN, TD, TG). 



Published: 

— with international search report 



[Continued on next page] 



S (54) Title: PAYMENT DEVICE AND METHOD FOR SECURE PAYMENT 



CERT 









CERTIFICATE 
JD] RECTORY _ 






9\ 
V- 

IT) 



O 



(57) Abstract: The present invention relates to the implementation of data secure payments services and devices. In particular, 
the present invention relates to payment service equipment (PS) and to two methods in which payment service equipment (PS) is 
used Thanks to the present invention, the paying with a payment card may be implemented via an information network such as the 
Internet in such a way that the paying is secure and that the number of the client's payment card does not need to be transmitted over 
the data transmission network. In the invention, the client is requested for a separate confirmation for effecting the payment. The 
piece of information to be confirmed is sent to the terminal device of the client, preferably a mobile stauon. by means of which the 
client digitally confirms the order made by him or her by signaling the confirmation received. The signed "nfirmation as well as the 
electronic identity information associaied with the client is sent back to the payment service equipment (PS). The payment service 
equipment (PS) takes care of the verifying of the client' s identity, of the checking of the validity of the client s payment card and of 
the eventual transmitting of the payment information to the payment system (BANK). 
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Payment device and method for secure payment 

FIELD OF THE INVENTION 

The present invention relates to telecommuni- 
cation systems. In particular, the invention relates 
5 to payment service equipment and method by means of 
which the security of use of a payment card, espe- 
cially a credit card, may be improved. 



10 



20 



BACKGROUND OF THE INVENTION 

In a traditional payment transaction, the 
client visits the offices of a merchant, chooses the 
desired products from the shelves and eventually pays 
his/her purchases, e.g. in cash or with a bank or 
credit card. Besides the traditional commerce there is 
15 the purchasing and paying of trade or different serv- 
ices via different telecommunication networks. In a 
mobile communication network, e.g. in the GSM system 
(GSM, Global System for Mobile communications) , it is 
possible to make and pay different purchases with the 
mobile station. In addition, the mobile station may be 
used to digitally sign and/or encrypt outgoing traffic 
for different operating applications. This practice 
helps to improve the data security in measures requir- 
ing it. in encryption and signing, a so-called public 
key infrastructure is often used (PKI. Public Key In- 
frastructure) . 

In the public key infrastructure, the user 
has got two keys, a public key and a private key. If 
the user wishes to send encrypted information to some- 
30 body, then he or she encrypts the information with the 
recipient's public key. The information encrypted with 
the public key may be transformed into a readable form 
only with a private key associated with the public 
key. The digital signature is used to mean a way of 
35 action in which one acts exactly contrary to the en- 
cryption of the message. The sender signs the message 
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with his or her own private signing key and the re- 
cipient may in turn decode the message into a readable 
form with the sender's public signing key. This is to 
make sure that the sender really is the person he or 

5 she claims to be. 

The paying via the Internet has been possible 
for a long time. The general practice is that the cli- 
ent visits the www sites (WWW, World Wide Web) of a 
merchant or other service provider, chooses the de- 

10 sired products and effects the payment for the chosen 
products. One possibility of effecting the payment is 
to transmit the credit card number directly to the 
merchant over the Internet without any encryption op- 
erations at all. This alternative, does not, however, 

15 take any stand on the security of the effecting of the 
payment . 

On the whole, there are several electronic 
payment modes differing from one another developed in 
conjunction with the Internet. Examples of these are, 
20 for instance, Ecash, solo of the Merita Bank, Kulta- 
raha of the bank Osuuspankki and the SET (SET, Secure 
Electronic Transaction) of credit card companies. SET 
is an international payment system developed together 
by VISA and MasterCard for secure purchasing on the 
25 Internet. SET is based on certificates issued by a 
trusted third party and on encrypted transmission of 
information. SET uses a symmetric and asymmetric en- 
cryption, digital signature as well as a SHA-1 algo- 
rithm (SHA, Secure Hash Algorithm) . The SET standard 
30 aims at the encryption of information, confidential- 
ity, checking of the integrity of the information, 
authentication of the sender and indisputability. 

The symmetric encryption is used to mean an 
encryption method in which the encrypted message may 
35 be decoded with the same key as the message was en- 
crypted. One example of this kind of method is DES 
(DES, Data Encryption Standard) . The asymmetric en- 
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cryption is used to mean that the message is encrypted 
and decoded using different keys. One example of this 
kind of method is the public key method RSA (RSA, 
Rivest, Shamir, Adleman) . 
5 In the present practices of purchasing on the 

Internet there are several problem points. The systems 
supporting the cards are often card-specific. The same 
applications cannot be used for paying with a credit 
card issued by another company. Therefore, the commer- 
10 cial centres have to support the payment practice of 
several different systems. 

In order that the security of paying with a 
credit card can be improved, all the parties associ- 
ated with the payment transaction - both the client 
15 and the merchant - have to often make investments in 
reliable software. If the investments required are too 
high, then this for its part is an obstacle to the 
spreading of commerce in the network. 

There are methods in which both of the par- 
20 ties of the commerce, the client and the merchant, 
have got their own certificates. The certificate is 
used to mean a kind of identification information is- 
sued by a trusted third party (TTP, Trusted Third 
Party) . In the case of a credit card payment, the 
25 meaning of the certificate is that it indicates that 
the user has got a credit card valid for paying. A 
certificate issued to the merchant gives in turn proof 
of the fact that the merchant is an authorized mer- 
chant. By means of certificates, both the client and 
30 the merchant can make sure of the identity of one an- 
other. The use of certificates, digital signature and 
encryption remarkably adds to the security of paying 
with the credit card on the Internet . 

The known modes of credit card payments have, 
35 however, weak points. The complexity of the payment 
system and the heavy investments were already dis- 
cussed above. The biggest problem is, however, the 
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fact that the credit card number of the client is sent 
over the data transmission network. Furthermore, some 
known methods require the use of a so-called digital 
wallet (Digital Wallet) . The digital wallet includes 
5 client-specific information, e.g. the certificate of 
the client, credit card number, the validity of the 
card, etc. The requirement for a successful payment 
transaction is that the digital wallet is in the ter- 
minal device by means of which the client is making 
10 the purchase. 

OBJECTIVE OF THE INVENTION 

The objective of the invention is to elimi- 
nate the drawbacks referred to above or at least sig- 

15 nif leant ly to alleviate them. One specific objective 
of the invention is to disclose a new type of payment 
service equipment and method which enable one to se- 
curely pay with a payment card, especially with a 
credit card, in an information network such as the 

20 internet. The credit card number of the client is not 
sent over the data transmission network at all. In ad- 
dition, the method in accordance with the invention 
does not take any stand on the fact who has issued the 
payment card, instead the method functions regardless 

25 of the card. 

BRIEF DESCRIPTION OF THE INVENTION 

The invention relates to the improvement of 
the security of a payment transaction effected with a 

30 payment card via the Internet. The payment service 
equipment and method in accordance with the invention 
enable the fact that the client may pay the products 
or services desired by him or her with his or her pay- 
ment card via the Internet without having to send his 

35 or her credit card number over the telecommunication 
network at all. In addition, the method in accordance 
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with the invention is in no way bound to the use of a 
payment card issued by a particular computer or com- 
pany . 

The payment service equipment in accordance 
5 with the invention comprises a first access interface 
to the payment system, a second access interface to 
the authentication system and a third access interface 
to the telecommunication network. The payment service 
equipment further comprises a certificate database for 
10 saving the certificates associated with the clients, a 
service provider database for saving information re- 
lating to the registered service providers, a client 
database for saving information relating to the cli- 
ents, a transaction database for saving information 
15 relating to the payment transactions and a verifica- 
tion database which includes an auxiliary list of sus- 
picious payment cards . 

According to the invention, the client data- 
base comprises, e.g. the mobile number of the client 
20 and information relating to the payment card of the 
client. The payment card of the client is advanta- 
geously used to mean a credit card. The payment card 
information of the client may be included also as a 
part of the certificate associated with the client. 
25 The payment service equipment further comprises a gen- 
eration block for generating the billing ticket con- 
nected with the payment transaction, a telecommunica- 
tion block for sending and receiving the confirmation 
of purchase connected with the billing ticket, an 
30 identification block for identifying the client based 
on the electronic identity and signature, and an in- 
formation retrieval block for checking the credit card 
information of the client. 

It is possible to encrypt the information in- 
35 eluded in the client database and service provider da- 
tabase, e.g. using a public key of the service payment 
equipment . 



WO 01/55979 



PCT/FI01/00063 



In an embodiment of the invention, the serv- 
ice payment equipment comprises a fourth access inter- 
face to the mobile communication network. 

The present invention also relates to a 
5 method for secure paying in a telecommunication system 
comprising a mobile communication network, a telecom- 
munication network, a payment terminal device which 
comprises a smart card and which is connected to the 
mobile communication network or to the telecommunica- 
10 tion network, a trusted third party, a payment system, 
service provider and an authentication system. In the 
method, a certificate associated with the client is 
generated and issued by the trusted third party, the 
product or service to be ordered is chosen via the 
15 service provider by means of a display terminal device 
via the telecommunication and/or mobile communication 
network and the client's payment card and/or payment 
card information is used for the paying of the product 
or service ordered. 
20 According to the invention, the payment serv- 

ice equipment is used to generate a billing ticket. A 
confirmation of order is sent to the payment terminal 
device of the client via the mobile communication net- 
work. The payment terminal device is advantageously 
25 used to mean a mobile station. The smart card is ad- 
vantageously used to mean a subscriber identity module 
(SIM, Subscriber Identity Module) inserted into the 
mobile station. The aforementioned confirmation of or- 
der is signed and/or encrypted in the payment terminal 
30 device. The signature and/or encryption is carried out 
by means of a smart card. Stored on the smart card are 
the necessary keys for carrying out the signing and/or 
encryption. Stored on the smart card is preferably the 
electronic identity of the client, the private key as- 
35 sociated with the client and the public key associated 
with the payment service equipment. 
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The signed and/or encrypted confirmation of 
order and the electronic identity associated with the 
client are sent from the payment terminal device to 
the payment service equipment via the mobile communi- 
5 cation network. The client is identified by the pay- 
ment service equipment based on the electronic iden- 
tity. The client is identified, e.g. based on the in- 
formation included in the certificate database. The 
payment card number associated with the client is re- 

10 trieved and the use of right of the payment card is 
verified. The payment is accepted, if the verification 
of the payment card was successful. Prior to accepting 
the payment one may check in the verification database 
attached to the payment service equipment that the 

15 client's payment card is not among suspicious or for- 
bidden payment cards. The request for the debiting of 
the payment is sent further to be implemented in the 

payment system. 

The validity of the payment card is checked, 

2 0 e.g. in a separate authentication system. The payment 
card information associated with the client is re- 
trieved, e.g. from the database of the payment service 
equipment. In an embodiment of the invention, the pay- 
ment card number of the client is retrieved from a 

25 certificate database attached to the payment service 
equipment. The payment card is advantageously used to 
mean a Visa, MasterCard or Diners Club card or a bank 
card. 

When the use of the client's payment card has 
30 been accepted, the service provider may be sent a con- 
firmation of the fact that the payment associated with 
the order has been effected. A similar confirmation 
may also be sent to the display terminal device or 
payment terminal device of the client. 
35 m an embodiment of the invention, the pay- 

ment terminal device and display terminal device are 
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used to mean a mobile station which comprises both fa- 
cilities . 

In an embodiment of the invention, the pay- 
ment terminal device is used to mean a mobile station 
5 and the display terminal device a computer. 

In an embodiment of the invention, the 
trusted third party updates the certificate database. 
The trusted third party is used to mean, e.g. a cer- 
tificate authority (CA, Certificate Authority) . 
10 in an embodiment of the invention, the mobile 

communication network is used to mean a mobile commu- 
nication network consistent with the GSM system. 

In an embodiment of the invention, the tele- 
communication network is used to mean a packet - 
15 switched network, e.g. an Internet network. 

The present invention also relates to a 
method for secure paying in a telecommunication system 
comprising a telecommunication network, a terminal de- 
vice into which there is a card reader inserted and 

2 0 into which card reader it is possible to input a smart 

card and which terminal device is connected to the 
telecommunication network, a trusted third party, a 
payment system, a service provider and an authentica- 
tion system. In the method, the trusted third party 
25 generates and issues the certificate associated with 
the client, the product or service to be ordered is 
chosen from the service provider by means of the ter- 
minal device via the telecommunication network, and 
the client's payment card and/ or payment card infor- 

3 0 mation is used for paying the ordered product or serv- 

ice. 

According to the invention, the payment serv- 
ice equipment is used to generate a billing ticket. A 
confirmation of the order that was made is sent to the 
35 terminal device of the client via the telecommunica- 
tion network. The terminal device is advantageously 
used to mean a computer. The confirmation of order is 
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signed and/or encrypted by means of the terminal de- 
vice. The signing and/or encryption is enabled by 
means of a card reader attached to the terminal device 
and by means of a smart card inserted into it. The 
5 client inputs into the card reader his or her own 
smart card on which there are the necessary keys 
stored for carrying out the signing and/or encryption. 
Stored on the smart card is preferably the electronic 
identity of the client, the private key associated 
10 with the client and the public key associated with the 
payment service equipment . 

The signed and/ or encrypted conf irmation of 
order and the electronic identity associated with the 
client are sent from the payment terminal device to 
15 the payment service equipment via the telecommunica- 
tion network. The client is identified by the payment 
service equipment based on the signature and/or elec- 
tronic identity. The client is identified, e.g. based 
on the information included in the certificate data- 
20 base. The payment card number associated with the cli- 
ent is retrieved and the use of right of the payment 
card is verified. The payment is accepted, if the 
verification of the payment card was successful. Prior 
to accepting the payment one may check in the verifi- 
25 cation database attached to the payment service equip- 
ment that the clien'ts payment card is not among sus- 
picious or forbidden payment cards. The request for 
the debiting of the payment is sent further to be im- 
plemented in the payment system. 
30 The validity of the payment card is advanta- 

geously checked in a separate authentication system. 
The payment card information associated with the cli- 
ent is retrieved, e.g. from the database of the pay- 
ment service equipment. In an embodiment of the inven- 
35 tion, the payment card number of the client is re- 
trieved from the certificate database attached to the 
payment service equipment. The payment card is advan- 
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tageously used to mean a Visa, MasterCard or Diners 
Club card or a bank card. 

When the use of the client's payment card has 
been accepted, the service provider may be sent a con- 
5 firmation of the fact that the payment associated with 
the order has been effected. A similar confirmation 
may also be sent to the terminal device of the client. 

In an embodiment of the invention, the 
trusted third party updates the certificate database. 
10 The trusted third party is used to mean, e.g. a cer- 
tificate authority (CA, Certificate Authority) . 

In an embodiment of the invention, the tele- 
communication network is used to mean a packet - 
switched network, e.g. an Internet network. 
15 as compared to prior art the present inven- 

tion provides several advantages. Thanks to the pres- 
ent invention, information proceeding in an open tele- 
communication network does not include the actual 
piece of information connected with the mode of debit- 
20 ing. This is used to mean that when the client pays 
his or her purchases with a credit card, the credit 
card number of the client is not sent over the tele- 
communication network at all. Due to this, the secu- 
rity level of the method presented by the invention is 

25 remarkably high. 

Furthermore, the present invention is in no 
way restricted to a certain payment mode or payment 
system. It can be used in all payment modes. 

Thanks to the present invention, the parties 
30 of a payment transaction do not need to make big in- 
vestments in hardware or software improving the secu- 
rity. 

BRIEF DESCRIPTION OF THE DRAWINGS 

35 m the following section, the invention will 

be described in detail by the aid of a few examples of 
its embodiments, in which 
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Fig. 1 represents one embodiment of the sys- 
tem in accordance with the invention, 

Fig. 2 represents one embodiment of the sys- 
tem in accordance with the invention, 
5 Fig. 3 represents one signaling flow chart in 

accordance with the invention, and 

Fig. 4 represents one signaling flow chart in 
accordance with the invention. 

10 DETAILED DESCRIPTION OF THE INVENTION 

The system as shown in Fig. 1 comprises pay- 
ment service equipment PS. Connected to the payment 
service equipment are five different databases: a cli- 
ent database DB, a service provider database RET, a 
15 transaction database TRANS, a verification database BL 
and a certificate database CERT. The client database 
DB comprises information relating to the clients. Cli- 
ent information may include, e.g. the name of the cli- 
ent, address, identity number, mobile number and the 
20 piece of information connected with the client's pay- 
ment cards. The service provider database RET com- 
prises information about registered service providers. 
The information relating to the service providers may 
include, e.g. the IP address of the service provider 
25 (IP, Internet Protocol) . Further, the information re- 
lating to service providers may include, e.g. the pay- 
ment cards accepted by the service provider and the 
bankers of the service provider. 

To the transaction database TRANS, vouchers 
30 of the orders of products or services made via the 
payment service equipment PS are stored. The responsi- 
bility of the transaction database TRANS is to act as 
a kind of a voucher storage which enables one to af- 
terwards unambiguously verify the purchases made, if 
35 necessary. The responsibility of the verification da- 
tabase BL is to save information about suspicious pay- 
ment cards, thus acting as a kind of a black list. The 
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certificate database CERT comprises certificates gen- 
erated to the clients that include, e.g. information 
relating to the clients and information relating to 
the issuer of the certificate. This kind of informa- 
5 tion may include, e.g. the name of the client and 
identity number, the address of the client, the public 
key of the client and the electronic identity. The 
certificate is issued by the trusted third party TTP, 
which also updates the certificate database CERT. The 
10 trusted third party TTP is advantageously used to mean 
a certificate authority. 

The example as shown in Fig 1 comprises four 
access interfaces: a first access interface 1 to the 
payment system BANK, a second access interface 2 to 
15 the authentication system AUT, a third access inter- 
face 3 to the telecommunication network NET and a 
fourth access interface to the mobile communication 
network PLMN. The aforementioned systems, the database 
and the networks are connected to the payment service 
20 equipment PS via the relevant access interfaces. The 
mobile communication network PLMN is advantageously 
used to mean a mobile communication network consistent 
with the GSM system. The telecommunication network NET 
is primarily used to mean a packet -switched data 
25 transmission network, e.g. the Internet. The telecom- 
munication network NET may, however, be any other 
packet-switched data transmission network. 

The payment service equipment PS further com- 
prises a generation block PAY for generating the bill- 
30 ing ticket connected with the payment transaction. The 
telecommunication block PB is used to send and receive 
the confirmation of order connected with the billing 
ticket. The identification block ID is used to iden- 
tify the client based on the electronic identity 
35 and/or signature. The information retrieval block IR 
is used to find out the payment card information re- 
lating to the client. 
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Connected to the mobile communication network 
PLMN is the payment terminal device PTE which is ad- 
vantageously used to mean a mobile station. Connected 
to the mobile station PTE is the smart card SIM which 
5 is advantageously a subscriber identity module. Stored 
on the subscriber identity module SIM are, e.g. the 
electronic identity associated with the holder of the 
subscriber identity module SIM, the holder's private 
key and the public key associated with the payment 
10 service equipment. The private key is advantageously 
used to refer to the private key consistent with the 
PKI system. 

Connected to the network NET are the service 
provider SP and the display terminal device DTE. The 
15 service provider SP is used to mean an entity which 
offers the clients a possibility of making purchases 
via the telecommunication network NET. The purchases 
are debited by means of the payment card of the cli- 
ent. The display terminal device DTE is advantageously 
20 used to mean an ordinary computer which comprises the 
necessary facilities and devices for using the service 
offered by the service provider PS. 

Connected to the payment service equipment PS 
is an authentication system AUT. By means of the 
25 authentication system AUT, the payment service equip- 
ment PS may check the validity of the client'ts pay- 
ment cards. In this example, the authentication system 
AUT consists of relevant data transmission networks. 
Via each data transmission network, the payment serv- 
30 ice equipment PS has the access to information systems 
of each company offering a payment card. 

Connected to the payment service equipment PS 
is also a payment system BANK. The payment system BANK 
is generally used to mean a system which actually deb- 
35 its the client's payment card and correspondingly 
credits the account of the service provider SP with 
the same sum. 
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The payment service equipment PS may, when 
required, be separated from the telecommunication net- 
work NET by using a firewall. The firewall is used to 
mean a software or hardware configuration which is 
5 used to try to prevent the unauthorized access of ex- 
traneous entities to the resources of some company or 
to the ones of one's own telecommunication network. 

The system as shown in Fig. 2 comprises pay- 
ment service equipment PS. Connected to the payment 
10 service equipment are five different databases: a cli- 
ent database DB , a service provider database RET, a 
transaction database TRANS , a verification database BL 
and a certificate database CERT. The client database 
DB comprises information relating to the clients. Cli- 
15 ent information may include, e.g. the name of the cli- 
ent, address, identity number, mobile number and the 
piece of information connected with the client's pay- 
ment cards. The service provider database RET com- 
prises information about registered service providers. 
2 0 The information relating to the service providers may 
include, e.g. the IP address of the service provider 
(IP, Internet Protocol) . Further, the information re- 
lating to service providers may include, e.g. the pay- 
ment cards accepted by the service provider and the 
25 bankers of the service provider. To the transaction 
database TRANS, vouchers of the orders of products or 
services made via the payment service equipment PS are 
stored. The responsibility of the transaction database 
TRANS is to act as a kind of a voucher storage which 
30 enables one to afterwards unambiguously verify the 
purchases made, if necessary. The responsibility of 
the verification database BL is to save information 
about suspicious payment cards, thus acting as a kind 
of a black list. The certificate database CERT com- 
35 prises certificates generated to the clients that in- 
clude, e.g. information relating to the clients and 
information relating to the issuer of the certificate. 
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This kind of information may include, e.g. the name of 
the client and identity number, the address of the 
client, the public key of the client and the elec- 
tronic identity. The certificate is issued by the 
5 trusted third party TTP , which also updates the cer- 
tificate database CERT. The trusted third party TTP is 
advantageously used to mean a certificate authority. 

In the example as shown in Fig. 2 the payment 
service equipment comprises three access interfaces: a 
10 first access interface 1 to the payment system BANK, a 
second access interface 2 to the authentication system 
AUT and a third access interface 3 to the telecommuni- 
cation network NET. The aforementioned systems and the 
telecommunication network NET are connected to the 
15 payment service equipment PS via the relevant access 
interfaces. The telecommunication network NET is pri- 
marily used to mean a packet -switched data transmis- 
sion network, e.g. the Internet. The telecommunication 
network NET may, however, be any other packet -switched 
20 data transmission network. 

The payment service equipment PS further com- 
prises a generation block PAY for generating the bill- 
ing ticket connected with the payment transaction. The 
telecommunication block PB is used to send and receive 
25 the confirmation of order connected with the billing 
ticket. The identification block ID is used to iden- 
tify the client based on the electronic identity 
and/or signature. The information retrieval block IR 
is used to find out the payment card information con- 
30 nected with the client. 

Connected to the telecommunication network 
NET are the service provider SP and the terminal de- 
vice TE. The service provider SP is used to mean an 
entity which offers the clients a possibility of mak- 
35 ing purchases via the telecommunication network NET . 
The purchases are debited from the payment card of the 
client. The terminal device TE is advantageously used 
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to mean an ordinary computer which comprises the nec- 
essary facilities and devices for using the service 
offered by the service provider SP . Connected to the 
terminal device TE is a smart card reader SCR. Into 
5 the card reader SCR, the smart card of the client may 
be input. Stored on the smart card SC are, e.g. the 
electronic identity associated with the holder of the 
smart card SC, the private key of the holder and the 
public key connected with the payment service equip- 
10 ment. The private key is preferably used to refer to 
the private key consistent with the PKI system. The 
card reader SCR may also be used to mean a facility 
internally installed in the terminal device TE 

Connected to the payment service equipment PS 
15 is an authentication system AUT. By means of the 
authentication system AUT, the payment service equip- 
ment PS may check the validity of the client's payment 
cards. In this example, the authentication system AUT- 
consists of relevant data transmission networks. Via 
20 each data transmission network, the payment service 
equipment PS has the access to the information system 
of each company offering a payment card. 

Connected to the payment service equipment PS 
is also a payment system BANK. The payment system BANK 
25 is generally used to mean a system which actually deb- 
its the client's payment card and correspondingly 
credits the account of the service provider SP with 

the same sum. 

The payment service equipment PS may, when 

30 required, be separated from the telecommunication net- 
work NET by using a firewall. The firewall is used to 
mean a software or hardware configuration which is 
used to try to prevent the unauthorized access of ex- 
traneous entities to the resources of some company or 

35 system. 

Fig. 3 is one advantageous flow chart illus- 
trating the function of the present invention. The ex- 
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ample as shown in Fig. 3 comprises a display device 
DTE, a payment terminal device PTE, a smart card SIM 
inserted into the payment terminal device PTE, a serv- 
ice provider SP, payment service equipment PS, a cer- 
5 tificate database CERT, an authentication system AUT 
and a payment system BANK. The display terminal device 
DTE is advantageously used to mean an ordinary com- 
puter. The payment terminal device PTE is advanta- 
geously used to mean a mobile station and the smart 
10 card SIM the subscriber identity module of the mobile 
station. 

The rhomb 30 is used to describe the actions 
the client takes via the computer DTE. The client 
chooses the www site connected with the service of- 

15 fered by the service provider SP. The service provided 
by the service provider may require a registration. In 
conjunction with the registering to the service the 
client transmits information about himself /herself to 
the service provider SP. The information may include, 

20 e.g. a name, address and mobile number. The access to 
the www sites required by the service may require that 
the client inputs a client identifier and a password. 
In addition, the client has got a certificate issued 
by a trusted third party. The certificate has been 

25 saved, e.g. to the certificate database of the payment 
service equipment PS. The payment service equipment PS 
comprises, for instance, a database which comprises 
all the service providers who have made a contract 
about the use of the payment service equipment PS . The 

30 service provider database includes, e.g. information 
about the payment cards accepted by the service pro- 
vider and about the bankers of the service provider. 
The information included in the service provider data- 
base may be encrypted, e.g. with the public key of the 
35 payment service equipment, if required. 

The arrow 31 is used to describe the informa- 
tion which the client transmits to the service pro- 
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vider SP via the www site. This is used to mean that 
the client has chosen the desired products and/or 
services via the www site of the service provider SP. 
In addition, he or she chooses the desired payment 
5 mode, which in this example is a Visa card. The client 
may be requested to fill in also his or her mobile 
number on the form. When all the necessary information 
has been filled in/chosen, the client sends the order, 
e.g. by pushing the pay button on the www site. As a 
10 consequence of pushing the pay button, the client may 
be displayed the www site produced by the payment 
service equipment . 

The service provider SP sends the information 
received from the client to the payment service equip- 
15 ment PS, arrow 32. The service provider SP may send to 
the payment service equipment PS also information 
which the user himself /herself has not input into the 
www site. This kind of information may be, e.g. the 
mobile number included in the registration information 
20 of the client, the name or identifier of the service 
provider SP, the total sum of the products or services 
ordered and the date. The information sent by the 
service provider SP to the payment service equipment 
PS may be encrypted, if required, or a check sum may 
25 be computed at it using, e.g. a hash function. The 
Hash function is used to mean a function which gener- 
ates an individual check sum from a given input. This 
enables one to make sure of the integrity of the in- 
formation transferred. The generation of an encryption 
30 or check sum is, however, not necessary because the 
information sent by the service provider SP is not 
sensitive in itself. Let it be mentioned that the 
service provider SP does not at any point send to the 
payment service equipment PS more detailed information 
35 relating to the payment card of the client, e.g. the 
number of the payment card or its validity. As con- 
cerns the payment card of the client, the service pro- 
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vider SP may send to the payment service equipment PS 
only the piece of information concerning the payment 
card company, i.e. that the payment card is, e.g. 
Visa, MasterCard, Diners Club or a bank card. 
5 The payment service equipment PS sends the 

confirmation of order to the mobile station PTE of the 
client, e.g. as a short message based on the informa- 
tion received from the service provider SP, arrow 33a. 
The confirmation of order includes information relat- 
10 ing to the order made by the client. This kind of in- 
formation is, e.g. the date, the products and services 
ordered, the total sum etc. The client checks the in- 
formation of the confirmation of order. If the infor- 
mation included in the confirmation of order is cor- 
15 rect, the client signs the confirmation of order with 
his or her own private signing key. It is possible to 
store to the subscriber identity module SIM the elec- 
tronic identity associated with the holder and the 
private key of the holder. The private key is advanta- 
2 0 geously used to refer to the private key consistent 
with the PKI system. The signing with the mobile sta- 
tion may require that the client inputs into his or 
her mobile station a predetermined code, e.g. a PIN 
code (PIN, Personal Identification Number) . 
25 in addition to the confirmation of order, the 

client sends to the payment service equipment his or 
her own electronic identity from his or her mobile 
station PTE, arrow 33b. The payment service equipment 
PS receives the information sent from the mobile sta- 
30 tion PTE and checks the signature of the client in the 
certificate database CERT connected to the payment 
service equipment PS, arrows 34a and 34b. The right to 
read the certificate database CERT belongs solely to 
the payment service equipment PS. The payment service 
35 equipment PS further authenticates the client's signa- 
ture and electronic identity, e.g. by utilizing the 
client database. 
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When the clien'ts identity has been verified, 
the payment service equipment PS finds out the credit 
card number of the client. This functionality is de- 
scribed by rhomb 35. The payment card number is 
5 checked, e.g. in the client database attached to the 
payment service equipment PS. The information included 
in the client database has been encrypted with the 
public key of the payment service equipment PS. In 
this way, only the payment service equipment PS can 
10 decode the information included in the client database 
into a readable form with its own private key. The 
client's payment card number may alternatively be 
saved to the client-specific certificate of the cer- 
tificate database CERT. 
!5 When the payment service equipment PS has 

found the client's payment card number, it is sent to 
the authentication system AUT to be checked, arrow 
36a. The authentication system AUT checks that the 
card indicated by the payment card number is valid. 
20 The authentication system AUT returns the result of 
the validity checking back to the payment service 
equipment PS, arrow 36b. 

The payment connected with the order made by 
the client may now be effected. Prior to accepting the 
25 payment, it is possible to check in the verification 
database attached to the payment service equipment PS 
that the client's payment card is not among suspicious 
or forbidden cards. The payment service equipment PS 
sends a confirmation of the effecting of the payment 
30 both to the service provider SP and to the client, ar- 
rows 37a and 37b. The command to effect the payment 
may now be sent to the payment system BANK, arrow 38. 
The payment system BANK debits the client's payment 
card with the sum shown by the order and correspond- 
35 ingly credits the account of the service provider SP 
with the same sum. 
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Vouchers of all the orders made may be stored 
to the transaction database attached to the payment 
service equipment PS. The data record to be stored to 
the database includes, e.g. the following information: 
5 - the electronic identity information of the cli- 

ent, the payment card details, account number, 
name and address, 
total sum of the order, 
recipient , 
10 - date 

client's signature, 
authentication code, 
- time stamp which has been received from a cer- 
tificate authority. 
15 in an embodiment as shown in Fig . 3 , the pay- 

ment service equipment PS may comprise a functionality 
that the use of a certain payment card requires the 
use of a certain mobile number. This is used to mean 
that if the client wishes to pay his or her purchases, 
20 e.g. with a VISA card, he or she has to have a certain 
subscriber identity module SIM inserted into his or 
her mobile station. 

In an embodiment as shown in Fig. 3, both the 
payment terminal device PTE and the display device DTE 
25 are used to mean physically the same device, prefera- 
bly a mobile station. 

Fig. 4 is one advantageous signaling flow 
chart illustrating the function of the present inven- 
tion. The example as shown in Fig. 4 comprises a ter- 
30 minal device TE, a card reader SRC attached to the 
terminal device and a smart card SC compatible with 
it, a service provider SP, payment service equipment 
PS, a certificate database CERT, an authentication 
system AUT and a payment system BANK. The terminal de- 
35 vice TE is advantageously used to mean a computer. 

The rhomb 40 is used to describe the actions 
the client takes via the computer TE . The client 
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chooses the www site connected with the service of- 
fered by the service provider SP. The service provided 
by the service provider may require a registration. In 
conjunction with the registering to the service the 
client transmits information about himself /herself to 
the service provider SP. This kind of information may 
include, e.g. a name, address and mobile number. The 
access to the www sites required by the service may 
require that the client inputs a client identifier and 
a password. In addition, the client has got a certifi- 
cate issued by a trusted third party. The certificate 
has been saved, e.g. to the certificate database of 
the payment service equipment PS. The payment service 
equipment PS comprises, for instance, a database which 
15 comprises all the service providers who have made a 
contract about the use of the payment service equip- 
ment PS. The service provider database includes, e.g. 
information about the payment cards accepted by the 
service provider and about the bankers of the service 
20 provider. The information included in the service pro- 
vider database may be encrypted, e.g. with the public 
key of the payment service equipment, if required. 

The arrow 41 is used to describe the informa- 
tion which the client transmits to the service pro- 
2 5 vider SP via the www site. This is used to mean that 
the client has chosen the desired products and/or 
services via the www site of the service provider SP. 
In addition, he or she chooses the desired payment 
mode, which in this example is a Visa card. The client 
30 may be requested to fill in also his or her mobile 
number on the form. When all the necessary information 
has been filled in/chosen, the client sends the order, 
e.g. by pushing the pay button on the www site. As a 
consequence of pushing the pay button, the client may 
35 be displayed the www site produced by the payment 
service equipment . 
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The service provider SP sends the information 
received from the client to the payment service equip- 
ment PS, arrow 42. The service provider SP may send to 
the payment service equipment PS also information 
which the user himself /herself has not input into the 
www site. This kind of information may be, e.g.. the 
mobile number included in the registration information 
of the client, the name or identifier of the service 
provider SP, the total sum of the products or services 
ordered and the date. The information sent by the 
service provider SP to the payment service equipment 
PS may be encrypted, if required, or a check sum may 
be computed at it using, e.g. a hash function. The 
Hash function is used to mean a function which gener- 
15 ates an individual check sum from a given input. This 
enables one to make sure of the integrity of the in- 
formation transferred. The generation of an encryption 
or check sum is, however, not necessary because the 
information sent by the service provider SP is not 
20 sensitive in itself. Let it be mentioned that the 
service provider SP does not at any point send to the 
payment service equipment PS more detailed information 
relating to the payment card of the client, e.g. the 
number of the payment card or its validity. As con- 
25 cerns the payment card of the client, the service pro- 
vider SP may send to the payment service equipment PS 
only the piece of information concerning the payment 
card company, i.e. that the payment card is, e.g. 
Visa, MasterCard, Diners Club or a bank card. 

The payment service equipment PS sends the 
confirmation of order to the terminal device TE of the 
client based on the information received from the 
service provider SP, arrow 43a. The confirmation of 
order includes information relating to the order made 
by the client. This kind of information is, e.g. the 
date, the products and services ordered, the total sum 
etc. The client checks the information of the confir- 
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mation of order. If the information included in the 
confirmation of order is correct, the client signs the 
confirmation of order with his or her own private 
signing key. The signature is carried out by means of 
5 a card reader SCR attached to the computer TE and by 
means of a client's smart card compatible with it. 
Stored on the smart card SC are the electronic iden- 
tity associated with the holder of the smart card SC 
and the private key of the holder. The private key is 
10 advantageously used to refer to the private key con- 
sistent with the PKI system. The signing by means of 
the terminal device TE and the card reader SCR may re- 
quire that the client inputs into his or her mobile 
station a predetermined code, e.g. a PIN code (PIN, 
15 Personal Identification Number) . 

In addition to the confirmation of order, the 
client sends to the payment service equipment PS his 
or her own electronic identity from his or her mobile 
station PTE, arrow 43b. The payment service equipment 
20 PS receives the information sent by the computer TE 
and checks the signature of the client in the certifi- 
cate database CERT attached to the payment service 
equipment PS, arrows 44a and 44b. The right to read 
the certificate database CERT belongs solely to the 
25 payment service equipment PS. The payment service 
equipment PS further authenticates the client's signa- 
ture and electronic identity, e.g. by utilizing the 

client database. 

When the client's identity has been verified, 

30 the payment service equipment PS finds out the credit 
card number of the client. This functionality is de- 
scribed by rhomb 45. The payment card number is 
checked, e.g. in the client database attached to the 
payment service equipment PS. The information included 

35 in the client database has been encrypted with the 
public key of the payment service equipment PS. In 
this way, only the payment service equipment PS can 
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decode the information included in the client database 
into a readable form with its own private key. The 
client's payment card number may alternatively be 
saved to the client- specif ic certificate of the cer- 
5 tificate database CERT. 

When the payment service equipment PS has 
found the client's payment card number, it is sent to 
the authentication system AUT to be checked, arrow 
4 6a. The authentication system AUT checks that the 
10 card indicated by the payment card number is valid. 
The authentication system AUT returns the result of 
the validity checking back to the payment service 
equipment PS, arrow 46b. 

The payment connected with the order made by 
15 the client may now be effected. Prior to accepting the 
payment, it is possible to check in the verification 
database attached to the payment service equipment PS 
that the client's payment card is not among suspicious 
or forbidden cards. The payment service equipment PS 
20 sends a confirmation of the effecting of the payment 
both to the service provider SP and to the client, ar- 
rows 47a and 47b. The command to effect the payment 
may now be sent to the payment system BANK, arrow 48. 
The payment system BANK debits the client's payment 
25 card with the sum shown by the order and correspond- 
ingly credits the account of the service provider SP 
with the same sum. 

Vouchers of all the orders made may be stored 
to the transaction database attached to the payment 
30 service equipment PS. The data record to be stored to 
the database includes, e.g. the following information: 
- the electronic identity information of the cli- 
ent, the payment card details, account number, 
name and address, 
35 - total sum of the order, 

recipient, 
date 
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client's signature, 
authentication code, 
- time stamp which has been received from a cer- 
tificate authority. 

The invention is not restricted merely to the 
embodiments referred to above, instead many variations 
are possible within the scope of the inventive idea 
defined by the claims. 
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CLAIMS 

1. Payment service equipment comprising: 
a first access interface (1) to the payment system 
(BANK) ; 

5 a second access interface (2) to the authentica- 

tion system (AUT) ; 

a third access interface (3) to the telecommunica- 
tion network (NET) ; 

a certificate database (CERT) for storing the cer- 
10 tificates associated with the clients; 

a service provider database (RET) for storing the 
information relating to the registered service provid- 
ers ; 

a client database (DB) for storing the information 
15 relating to the clients; 

a transaction database (TRANS) for storing the in- 
formation relating to the payment transactions; 

a verification database (BL) which comprises an 
auxiliary list of suspicious payment cards, 
20 characterised in that the payment 

service equipment comprises : 

a generation block (PAY) for generating the bill- 
ing ticket connected with the payment transaction; 

a telecommunication block (PB) for sending and re- 
25 ceiving the confirmation of order connected with the 
billing ticket; 

an identification block (ID) for identifying the 
client based on the electronic identity and signature; 
and 

30 an information retrieval block (IP) for finding 

out the payment card information of the client. 

2 . Payment service equipment as defined in 
claim 1, characterised in that the client 
information included in the client database (DB) com- 

35 prises the client's mobile number and/or information 
relating to the payment card of the client . 
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3. Payment service equipment as defined in 
claim 1 or 2 , characterised in that the pay- 
ment card is a credit card. 

4. Payment service equipment as defined in 
5 any one of the preceding claims 1, 2 or 3, char- 
acterised in that the information included in 
the client database (DB) and/or in the service pro- 
vider database (RET) is encrypted. 

5. Payment service equipment as defined in 
10 any one of the preceding claims 1, 2, 3 or 4, char- 
acterised in that the payment card information 
is included in the certificate of the client in the 
certification database (CERT) . 

6. Payment service equipment as defined in 
15 any one of the preceding claims 1, 2, 3, 4 or 5, 

characterised in that the payment service 
equipment comprises a fourth access interface (4) to 
the mobile communication network. 

7. A method for secure paying in a telecommu- 
20 nication system comprising: 

a mobile communication network (PLMN) ; 
a telecommunication network (NET) ; 

a payment terminal device (PTE) which comprises a 
smart card (SIM) and which is connected to the mobile 
25 communication network (PLMN) ; 

a display terminal device (DTE) which is connected 
to the mobile communication network (PLMN) and/or to 
the telecommunication network (NET) ; 
a trusted third party (TTP) ; 
3 0 a payment system (BANK) ; 

a service provider (SP) ; 

an authentication system (AUT) ; 

which method comprises the steps of: 
generating and issuing by the trusted third party 
35 (TTP) the certificate associated with the client; 

choosing the product or service to be ordered by 
means of the display terminal device (DTE) from the 
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service provider (SP) via the telecommunication net- 
work (NET) and/or the mobile communication network 
(PLMN) ; 

using the client's payment card and/or payment 
5 card information for the paying of the product or 

service ordered; 

characterised in that the method 

further comprises the steps of: 

generating by means of the payment service equip- 
ment the billing ticket connected with the product or 

service ordered; 

sending a confirmation of order to the payment 
terminal device (PTE) of the client via the mobile 
communication network (PLMN) ; 

signing and/or encrypting the aforementioned con- 
firmation of order by means of the payment terminal 
device (PTE) ; 

sending the aforementioned signed and/or encrypted 
confirmation of order and the electronic identity in- 
formation associated with the client from the payment 
terminal device (PTE) to the payment service equipment 
(PS) by way of the mobile communication network 
(PLMN); 

identifying the client by the payment service 
equipment (PS) based on the aforementioned signature 
and/or electronic identity information; 

retrieving the payment card number associated with 
the client based on the aforementioned signature 
and/or electronic identity information. 

checking the use of right of the payment card and 
accepting the payment, if the payment card was suc- 
cessfully verified. 

8. A method as defined in claim 7, char- 
acterised in that the client is identified 
based on the information included in the certificate 
database (CERT) . 
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9. A method as defined in claim 7 or 8 , 
characterised in that the payment card num- 
ber associated with the client is retrieved from the 
client database (DB) of the payment service equipment 

5 (PS) . 

10. A method as defined in claim 7 or 8, 
characterised in that the payment card num- 
ber of the client is retrieved from the certificate 
database (CERT) attached to the payment service equip- 

10 ment (PS) . 

11. A method as defined in any one of the 
preceding claims 7, 8, 9 or 10, characterised 
in that the validity of the payment card is checked in 
the authentication system (AUT) . 

12. A method as defined in any one of the 
preceding claims 7, 8, 9, 10 or 11, character- 
ised in that one checks in the verification data- 
base (BL) that the payment card is not among suspi- 
cious or forbidden cards. 

13. A method as defined in any one of the 
preceding claims 7, 8, 9, 10, 11 or 12, charac- 
terised in that the request for the debiting of 
the payment is sent to the payment system (BANK) after 
the validity of the payment card has been checked. 

25 14. A method as defined in any one of the 

preceding claims 7, 8, 9,. 10, 11, 12 or 13, char- 
acterised in that the confirmation of the suc- 
ceeding of the order is sent to the client's display 
terminal device (DTE) or payment terminal device (PTE) 

30 and to the service provider (SP) . 

15. A method as defined in any one of the 
preceding claims 7, 8, 9, 10, 11, 12, 13 or 14, 
characterised in that the certificate data- 
base is updated by the trusted third party (TTP) . 

16. A method as defined in any one of the 
preceding claims 7, 8, 9, 10, 11, 12, 13, 14 or 15, 
characterised in that the payment terminal 
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device (PTE) and the display terminal device (DTE) are 
used to mean a mobile station. 

17. A method as defined in any one of the 
preceding claims 7, 8, 9, 10, 11. 12, 13, 14, 15 or 

5 16, c h a r a c t e r i s e d in that the payment termi- 
nal device (PTE) is used to mean a mobile station and 
the display terminal device (DTE) a computer. 

18. A method as defined in any one of the 
preceding claims 7, 8, 9, 10, 11, 12. 13, 14, 15, 16 
or 17, characterised in that the payment 
card is used to mean a Visa, MasterCard or Diners Club 

card or a bank card. 

19. A method as defined in any one of the 
preceding claims 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 

15 17 or 18, c h a r a c t e r i s e d in that the smart 
card (SIM) is used to mean a subscriber identity mod- 
ule . 

20. A method as defined in any one of the 
preceding claims 7, 8, 9. 10, 11, 12, 13, 14, 15, 16, 
17, 18 or 19, c h a r a c t e r i s e d in that stored 
on the smart card (SIM) are the electronic identity of 
the client and the client's private key. 

21. A method as defined in any one of the 
preceding claims 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 

25 17, 18, 19 or 20, characterised in that 
stored on the smart card (SIM) is the public key asso- 
ciated with the payment service equipment (PS) . 

22. A method as defined in any one of the 
preceding claims 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 

30 17, 18, 19, 20 or 21, c h a r a c t e r i s e d in that 
the mobile communication network (PLMN) is used to 
mean a mobile communication network consistent with 

the GSM system. 

23. A method as defined in any one of the 
35 preceding claims 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 

17, 18, 19, 20, 21 or 22, c h a r a c t e r i s e d in 
that the telecommunication network (NET) is used to 
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mean a packet -switched network, e.g. the Internet net- 
work. 

24. A method for secure paying in a telecom- 
munication network comprising: 
5 a telecommunication network (NET) ; 

a terminal device (TE) to which terminal device 
there is a card reader (SCR) attached and into which 
card reader it is possible to input a smart card (SC) 
and which terminal device (TE) is connected to the 
10 telecommunication network (NET) ; 

a trusted third party (TTP); 
a payment system (BANK) ; 
a service provider (SP) ; 
an authentication system (AUT) ; 
15 which method comprises the steps of: 

generating and issuing by the trusted third party 
(TTP) the certificate associated with the client; 

choosing the product or service to be ordered by 
means of the terminal device (TE) from the service 
20 provider (SP) via the telecommunication network (NET) ; 

using the client's payment card and/or payment 
card information for the paying of the product or 

service ordered; 

characterised in that the method 

25 further comprises the steps of: 

generating by means of the payment service equip- 
ment (PS) the billing ticket connected with the prod- 
uct or service ordered; 

sending a confirmation of order to the terminal 
30 device (TE) of the client via the telecommunication 

network (NET) ; 

signing and/or encrypting the aforementioned confir- 
mation of order with the terminal device (TE) by means 
of a card reader (SCR) attached to it and by means of a 
35 smart card (SC) inserted into the card reader; 

sending the aforementioned signed and/or encrypted 
confirmation of order and the electronic identity in- 
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formation associated with the client from the terminal 
device (TE) to the payment service equipment (PS) by- 
way of the telecommunication network (NET) ; 

identifying the client by the payment service 
5 equipment (PS) based on the aforementioned signature 
and/or electronic identity information; 

retrieving the payment card number associated with 
the client based on the aforementioned signature 
and/or electronic identity information. 
10 checking the use of right of the payment card and 

accepting the payment, if the payment card was suc- 
cessfully verified. 

25. A method as defined in claim 24, char- 
acterised in that the client is identified 

15 based on the information included in the certification 

database (CERT) . 

26. A method as defined in claim 24 or 25, 
characterised in that the payment card num- 
ber associated with the client is retrieved from the 

20 database (DB) of the payment service equipment (PS) . 

27. A method as defined in claim 24 or 25, 
characterised in that the payment card num- 
ber of the client is retrieved from the certificate 
database (CERT) attached to the payment service equip- 

25 ment (PS) . 

28. A method as defined in any one of the 
preceding claims 24, 25, 26 or 27, character- 
ised in that the validity of the payment card is 
checked in the authentication system (AUT) . 

30 29. A method as defined in any one of the 

preceding claims 24, 25, 26, 27 or 28, charac- 
terised in that one checks in the verification 
database (BL) that the payment card is not among sus- 
picious or forbidden cards . 

30. A method as defined in any one of the 
preceding claims 24, 25, 26, 27, 28 or 29, char- 
acterised in that the request for the debiting 
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of the payment is sent to the payment system (BANK) 
after the validity of the payment card has been 
checked. 

31. A method as defined in any one of the 
5 preceding claims 24, 25, 26, 21, 28, 29 or 30, 

characterised in that a confirmation of the 
succeeding of the order is sent to the terminal device 
(TE) of the client and to the service provider (SP) . 

32 . A method as defined in any one of the 
10 preceding claims 24, 25, 26, 27, 28, 29, 30 or 31, 

characterised in that the certificate data- 
base is updated by the trusted third party (TTP) . 

33. A method as defined in any one of the 
preceding claims 24, 25, 26, 27, 28, 29, 30, 31 or 32, 

15 characterised in that the terminal device 
(TE) is used to mean a computer. 

34. A method as defined in any one of the 
preceding claims 24, 25, 26, 27, 28, 29, 30, 31, 32 or 
33, characterised in that the payment card 

20 is' used to mean a Visa, MasterCard or Diners Club card 

or a bank card. 

35. A method as defined in any one of the 
preceding claims 24, 25, 26, 27, 28, 29, 30, 31, 32, 
33 or 34, char ac t er i sed in that stored on 

25 the smart card (SC) are the client's electronic iden- 
tity and private key. 

3 6. A method as defined in any one of the 
preceding claims 24, 25, 26, 27, 28, 29, 30, 31, 32, 
33, 34 or 35, characterised in that stored 

30 on the smart card (SC) is the public key associated 
with the payment service equipment (PS) . 

3 7. A method as defined in any one of the 
preceding claims 24, 25, 26, 27, 28, 29, 30, 31, 32, 
33, 34, 35 or 36, c h a r a c t e r i s e d in that the 

35 telecommunication network (NET) is used to mean a 
packet-switched network, e.g. the Internet network. 
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